CVE-2008-1721
published 2008-04-10CVE-2008-1721: Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed…
PriorityP356high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
22.62%
97.4th percentile
Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| python | python | >= 2.4.0 < 2.4.6 | 2.4.6 |
| python | python | 2.5.0 – 2.5.2 | — |
| vmware | esxi | — | — |
| vmware | vmware_tools | — | — |
| vmware | vmware_vcenter_server | — | — |
| vmware | vmware_vsphere | — | — |
| vmware | vmware_workstation | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
vendor_ubuntu6.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VMware
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
vendor_vmware·2009-11-20·CVSS 5.0
CVE-2007-2052 [MEDIUM] VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
VMSA-2009-0016: VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
a. JRE Security Update JRE update to version 1.5.0_20, which addresses multiple security issues that existed in earlier releases of JRE. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the following names to the security issues fixed in JRE 1.5.0_18: CVE-2009-1093, CVE-2009-1094, CVE-2009-1095, CVE-2009-1096, CVE-2009-1097, CVE-2009-1098, CVE-2009-1099, CVE-2009-1100, CVE-2009-1101, CVE-2009-1102, CVE-2009-1103, CVE-2009-1104, CVE-2009-1105, CVE-2009-1106, and CVE-2009-1107. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the following names to the security issues fixed in JRE 1.5.0_20: CVE-2009-
Ubuntu
Python vulnerabilities
vendor_ubuntu·2008-08-01·CVSS 6.8
CVE-2008-1679 [MEDIUM] Python vulnerabilities
Title: Python vulnerabilities
Summary: Python vulnerabilities
It was discovered that there were new integer overflows in the imageop
module. If an attacker were able to trick a Python application into
processing a specially crafted image, they could execute arbitrary code
with user privileges. (CVE-2008-1679)
Justin Ferguson discovered that the zlib module did not correctly
handle certain archives. If an attacker were able to trick a Python
application into processing a specially crafted archive file, they could
execute arbitrary code with user privileges. (CVE-2008-1721)
Justin Ferguson discovered that certain string manipulations in Python
could be made to overflow. If an attacker were able to pass a specially
crafted string through the PyString_FromStringAndSize function, they
could
VMware
Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues
vendor_vmware·2008-06-04·CVSS 2.6
CVE-2006-1721 [LOW] Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues
VMSA-2008-0009: Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues
Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues VMware Security Advisory VMware Security AdvisoryAdvisory ID: VMware Security AdvisorySynopsis: Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues VMware Security AdvisoryIssue date: VMware Security AdvisoryUpdated on:
CVEs: CVE-2006-1721, CVE-2007-4772, CVE-2007-5378, CVE-2007-5671, CVE-2008-0062, CVE-2008-0063, CVE-2008-0553, CVE-2008-0888, CVE-2
Red Hat
python: integer signedness error in the zlib extension module
vendor_redhat·2008-04-09·CVSS 7.5
CVE-2008-1721 [HIGH] python: integer signedness error in the zlib extension module
python: integer signedness error in the zlib extension module
Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow.
Statement: Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=442005
The Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: https://access.redhat.com/security/updates/classification/
GHSA
GHSA-3hc2-c7c2-f785: Integer signedness error in the zlib extension module in Python 2
ghsa_unreviewed·2022-05-01
CVE-2008-1721 [HIGH] CWE-681 GHSA-3hc2-c7c2-f785: Integer signedness error in the zlib extension module in Python 2
Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow.
No detection rules found.
Bugzilla
CVE-2008-1887 python: PyString_FromStringAndSize does not check for negative size values
bugzilla·2008-04-23·CVSS 7.5
CVE-2008-1887 [HIGH] CVE-2008-1887 python: PyString_FromStringAndSize does not check for negative size values
CVE-2008-1887 python: PyString_FromStringAndSize does not check for negative size values
Common Vulnerabilities and Exposures assigned an identifier CVE-2008-1887 to the following vulnerability:
Python 2.5.2 and earlier allows context-dependent attackers to execute arbitrary code via multiple vectors that cause a negative size value to provided to the PyString_FromStringAndSize function, which allocates less memory than expected when assert() is disabled and triggers a buffer overflow.
Refences:
http://bugs.python.org/issue2587
http://www.securityfocus.com/archive/1/490776
http://www.debian.org/security/2008/dsa-1551
Discussion:
Upstream SVN commits:
http://svn.python.org/view?rev=62262&view=rev
http://svn.python.org/view?rev=62261&view=rev
---
This really is a cause of CVE-2008-17
Bugzilla
CVE-2008-1721 python: integer signedness error in the zlib extension module
bugzilla·2008-04-11·CVSS 7.5
CVE-2008-1721 [HIGH] CVE-2008-1721 python: integer signedness error in the zlib extension module
CVE-2008-1721 python: integer signedness error in the zlib extension module
Common Vulnerabilities and Exposures assigned an identifier CVE-2008-1721 to the following vulnerability:
Integer signedness error in the zlib extension module in Python 2.5.2
and earlier allows remote attackers to execute arbitrary code via a
negative signed integer, which triggers insufficient memory allocation
and a buffer overflow.
References:
http://www.securityfocus.com/archive/1/archive/1/490690/100/0/threaded
http://bugs.python.org/issue2586
http://www.securityfocus.com/bid/28715
Discussion:
Since this issue requires a rather silly use of the python zlib module, we have
classified it as having a low security impact.
A future update may address this flaw. More information regarding issue severity
can b
http://bugs.python.org/issue2586http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.htmlhttp://secunia.com/advisories/29889http://secunia.com/advisories/29955http://secunia.com/advisories/30872http://secunia.com/advisories/31255http://secunia.com/advisories/31358http://secunia.com/advisories/31365http://secunia.com/advisories/33937http://secunia.com/advisories/37471http://secunia.com/advisories/38675http://security.gentoo.org/glsa/glsa-200807-01.xmlhttp://securityreason.com/securityalert/3802http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.525289http://support.apple.com/kb/HT3438http://support.avaya.com/css/P8/documents/100074697http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0149http://www.debian.org/security/2008/dsa-1551http://www.debian.org/security/2008/dsa-1620http://www.mandriva.com/security/advisories?name=MDVSA-2008:085http://www.securityfocus.com/archive/1/490690/100/0/threadedhttp://www.securityfocus.com/archive/1/507985/100/0/threadedhttp://www.securityfocus.com/bid/28715http://www.securitytracker.com/id?1019823http://www.ubuntu.com/usn/usn-632-1http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlhttp://www.vupen.com/english/advisories/2008/1229/referenceshttp://www.vupen.com/english/advisories/2009/3316https://exchange.xforce.ibmcloud.com/vulnerabilities/41748https://issues.rpath.com/browse/RPL-2444https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8249https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8494https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9407http://bugs.python.org/issue2586http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.htmlhttp://secunia.com/advisories/29889http://secunia.com/advisories/29955http://secunia.com/advisories/30872http://secunia.com/advisories/31255http://secunia.com/advisories/31358http://secunia.com/advisories/31365http://secunia.com/advisories/33937http://secunia.com/advisories/37471http://secunia.com/advisories/38675http://security.gentoo.org/glsa/glsa-200807-01.xmlhttp://securityreason.com/securityalert/3802http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.525289http://support.apple.com/kb/HT3438http://support.avaya.com/css/P8/documents/100074697http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0149http://www.debian.org/security/2008/dsa-1551http://www.debian.org/security/2008/dsa-1620http://www.mandriva.com/security/advisories?name=MDVSA-2008:085http://www.securityfocus.com/archive/1/490690/100/0/threadedhttp://www.securityfocus.com/archive/1/507985/100/0/threadedhttp://www.securityfocus.com/bid/28715http://www.securitytracker.com/id?1019823http://www.ubuntu.com/usn/usn-632-1http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlhttp://www.vupen.com/english/advisories/2008/1229/referenceshttp://www.vupen.com/english/advisories/2009/3316https://exchange.xforce.ibmcloud.com/vulnerabilities/41748https://issues.rpath.com/browse/RPL-2444https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8249https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8494https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9407
2008-04-10
Published